Platform Cybersecurity Engineer Job Listing at SPA in United States of America (Job ID 22907)

Description

Overview

Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both the US and abroad. Our exceptionally talented team is highly collaborative in spirit and practice, producing Results that Matter. Come work with the best! We offer opportunity, unique challenges, and clear-sighted commitment to the mission. SPA: Objective. Responsive. Trusted. 

The Space and Intelligence Division provides professional services to the US Space Force, Combatant Commands, Intelligence Community, and NASA. Our work includes enterprise architectural assessments, systems engineering and integration, test, planning and execution, cost estimating and analysis, acquisition support, and cybersecurity.  We are trusted partners developing approaches and concepts to meet emerging high priority needs, assessing cutting-edge technologies, and supporting capabilities for our National Defense.  Come join the fastest growing Division at Systems Planning and Analysis, Inc.!

The Space Systems Group (SSG), part of SPA's Space and Intelligence Division, provides timely and objective assessments and recommendations integrating technical, operational, programmatic, policy and business analysis. We focus on our key clients in the Space community including the US Space Force's Space Systems Command (USSF/SSC), one of the three designated Field Commands under USSF. We work tirelessly to provide integrated solutions based on information and communications throughout the chain of command.  We provide clear and consistent analysis and recommendations which are aligned to strategic and leadership goals while balancing the ability to  execute on time and on budget within the technical communities. Come join an organization responsible for being a key enabler of Spacepower!

SPA has an immdiate need for a Platform Cybersecurity Engineer.

SPA is seeking a Platform Cybersecurity Engineer to help secure and advance a secure Platform-as-a-Service environment supporting USSF/SSC. This role is central to ensuring that the platform, which is used by multiple software delivery teams and mission partners, remains secure, resilient, and compliant across IL4, IL5, IL6 and SCI Azure cloud environments. The successful candidate will integrate deeply with DevSecOps workflows, product teams, and platform engineering stakeholders to implement practical security controls that enable rapid, secure delivery of mission-critical capabilities. As a key member of the cybersecurity and platform engineering ecosystem, you will combine cloud-native security engineering with disciplined RMF implementation to sustain and evolve the platform's accreditation posture. You will be expected to get hands-on to shape secure cloud architectures, implement technical safeguards, support authorization activities, and improve detection, monitoring, and response capabilities across the environment. This position is ideal for an engineer who understands modern cloud security in Azure, can translate RMF requirements into actionable technical solutions, and thrives within fast-paced, mission‑oriented environments. Your contributions will directly influence platform trust, operational readiness, and the speed at which space mission capabilities can be delivered to the warfighter.

Key Responsibilities Include:

• Design and implement cloud-native security controls across Azure services, identity and access management, containerized workloads, and infrastructure-as-code to ensure a secure and reliable PaaS foundation.
• Support platform authorization activities by developing, maintaining, and validating RMF documentation, control implementation evidence, architecture diagrams, and continuous monitoring artifacts aligned with DoD and USSF/SSC requirements.
• Enhance platform observability and protection by improving logging, monitoring, alerting, and detection capabilities; tuning signals. and integrating with existing cybersecurity tools and workflows.
• Collaborate with platform engineering, DevSecOps, and product teams to embed security into the design of services, pipelines, and deployments – emphasizing automation, secure configurations, and repeatable patterns.
• Conduct assessments, threat analyses, and technical reviews of platform changes, helping to manage risks and ensure compliance while enabling speed and mission value.
• Contribute to the maturation of platform governance, zero-trust practices, secure cloud baselines, and policy-as-code enforcement across the environment.

Expected Outcomes:

Success in this role is defined by the ability to secure, sustain, and evolve the PaaS environment in a way that strengthens mission confidence and platform adoption. 

• Maintain a secure, compliant, and resilient Azure-based platform across IL4, IL5, IL6, and SCI environments, ensuring consistent delivery of cyber protections without slowing development velocity.
• Improve platform accreditation and continuous monitoring by producing accurate, high-quality RMF artifacts and ensuring traceable, validated control implementations.
• Strengthen the platform's detection and response posture through enhanced logging, monitoring, and automation that meaningfully reduce risks and operational blind spots.
• Build strong, trust-based relationships with platform teams, product owners, and mission stakeholders to position security as an enabler of capability delivery rather than a bottleneck.
• Contribute to the platform's long-term evolution by identifying gaps, shaping security enhancements, and driving improvements that align with emerging mission needs and evolving USSF/SSC priorities.

 This is a fully remote/hybrid position.

About the Must Haves

• US Citizen and current active DoD Secret clearance
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, IT, or a related field
• Possession of a DoD 8140 IAT II certification
• Minimum 8 years of experience performing the following:
  • Hands-on experience securing Azure cloud environments, including identity, networking, monitoring, logging, and service configuration
  • Practical experience implementing NIST 800‑53 security controls and supporting DoD RMF accreditation activities
  • Demonstrated ability to work across engineering, cybersecurity, and DevSecOps teams to implement secure solutions in fast-paced delivery environments

At SPA, we strive to deliver a robust total compensation package that will attract and retain top talent.  Elements of the compensation package include competitive base pay and variable compensation opportunities.  

SPA provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.  The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, etc.

Please note that the salary information shown below is a general guideline only.  Salaries are commensurate with experience and qualifications, as well as market and business considerations.  Pay Transparency Range:  160k - 185k

About the Must Haves

• US Citizen and current active DoD Secret clearance
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, IT, or a related field
• Possession of a DoD 8140 IAT II certification
• Minimum 8 years of experience performing the following:
  • Hands-on experience securing Azure cloud environments, including identity, networking, monitoring, logging, and service configuration
  • Practical experience implementing NIST 800‑53 security controls and supporting DoD RMF accreditation activities
  • Demonstrated ability to work across engineering, cybersecurity, and DevSecOps teams to implement secure solutions in fast-paced delivery environments

At SPA, we strive to deliver a robust total compensation package that will attract and retain top talent.  Elements of the compensation package include competitive base pay and variable compensation opportunities.  

SPA provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.  The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, etc.

Please note that the salary information shown below is a general guideline only.  Salaries are commensurate with experience and qualifications, as well as market and business considerations.  Pay Transparency Range:  160k - 185k

SPA is seeking a Platform Cybersecurity Engineer to help secure and advance a secure Platform-as-a-Service environment supporting USSF/SSC. This role is central to ensuring that the platform, which is used by multiple software delivery teams and mission partners, remains secure, resilient, and compliant across IL4, IL5, IL6 and SCI Azure cloud environments. The successful candidate will integrate deeply with DevSecOps workflows, product teams, and platform engineering stakeholders to implement practical security controls that enable rapid, secure delivery of mission-critical capabilities. As a key member of the cybersecurity and platform engineering ecosystem, you will combine cloud-native security engineering with disciplined RMF implementation to sustain and evolve the platform's accreditation posture. You will be expected to get hands-on to shape secure cloud architectures, implement technical safeguards, support authorization activities, and improve detection, monitoring, and response capabilities across the environment. This position is ideal for an engineer who understands modern cloud security in Azure, can translate RMF requirements into actionable technical solutions, and thrives within fast-paced, mission‑oriented environments. Your contributions will directly influence platform trust, operational readiness, and the speed at which space mission capabilities can be delivered to the warfighter.

Key Responsibilities Include:

• Design and implement cloud-native security controls across Azure services, identity and access management, containerized workloads, and infrastructure-as-code to ensure a secure and reliable PaaS foundation.
• Support platform authorization activities by developing, maintaining, and validating RMF documentation, control implementation evidence, architecture diagrams, and continuous monitoring artifacts aligned with DoD and USSF/SSC requirements.
• Enhance platform observability and protection by improving logging, monitoring, alerting, and detection capabilities; tuning signals. and integrating with existing cybersecurity tools and workflows.
• Collaborate with platform engineering, DevSecOps, and product teams to embed security into the design of services, pipelines, and deployments – emphasizing automation, secure configurations, and repeatable patterns.
• Conduct assessments, threat analyses, and technical reviews of platform changes, helping to manage risks and ensure compliance while enabling speed and mission value.
• Contribute to the maturation of platform governance, zero-trust practices, secure cloud baselines, and policy-as-code enforcement across the environment.

Expected Outcomes:

Success in this role is defined by the ability to secure, sustain, and evolve the PaaS environment in a way that strengthens mission confidence and platform adoption. 

• Maintain a secure, compliant, and resilient Azure-based platform across IL4, IL5, IL6, and SCI environments, ensuring consistent delivery of cyber protections without slowing development velocity.
• Improve platform accreditation and continuous monitoring by producing accurate, high-quality RMF artifacts and ensuring traceable, validated control implementations.
• Strengthen the platform's detection and response posture through enhanced logging, monitoring, and automation that meaningfully reduce risks and operational blind spots.
• Build strong, trust-based relationships with platform teams, product owners, and mission stakeholders to position security as an enabler of capability delivery rather than a bottleneck.
• Contribute to the platform's long-term evolution by identifying gaps, shaping security enhancements, and driving improvements that align with emerging mission needs and evolving USSF/SSC priorities.

 This is a fully remote/hybrid position.